Resultado do análise da Farbar Recovery Scan Tool (FRST) (x64) Versão: 26-11-2021 Executado por Cliente (administrador) em DESKTOP-9U4R564 (Daten Tecnologia Ltda DC2A-T) (28-11-2021 10:22:42) Executando a partir de C:\Users\Cliente\Desktop Perfis Carregados: Cliente Plataforma: Microsoft Windows 10 Pro Versão 21H2 19044.1348 (X64) Idioma: Português (Brasil) Navegador padrão: Opera Modo da Inicialização: Normal ==================== Processos (Whitelisted) ================= (Se uma entrada for incluída na fixlist, o processo será fechado. O arquivo não será movido.) (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\AMDRSServ.exe (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\cncmd.exe (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) C:\Program Files\AMD\CNext\CNext\RadeonSoftware.exe (Advanced Micro Devices, Inc.) [Arquivo não assinado] C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler.exe (Google LLC -> Google LLC) C:\Program Files (x86)\Google\Update\1.3.36.112\GoogleCrashHandler64.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avpui.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe (Kaspersky Lab JSC -> AO Kaspersky Lab) C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksdeui.exe (Microsoft Corporation -> Microsoft Corporation) C:\Program Files\Common Files\microsoft shared\ClickToRun\OfficeClickToRun.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.WindowsAlarms_10.2101.28.0_x64__8wekyb3d8bbwe\Time.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.10202.0_x64__8wekyb3d8bbwe\GameBar.exe (Microsoft Corporation) C:\Program Files\WindowsApps\Microsoft.XboxGamingOverlay_5.721.10202.0_x64__8wekyb3d8bbwe\GameBarFTServer.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\dllhost.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\MoUsoCoreWorker.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\smartscreen.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\SppExtComObj.Exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\System32\wbem\WMIC.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\SysWOW64\wbem\WmiPrvSE.exe (Microsoft Windows -> Microsoft Corporation) C:\Windows\WinSxS\amd64_microsoft-windows-servicingstack_31bf3856ad364e35_10.0.19041.1371_none_7e1bd7147c8285b0\TiWorker.exe ==================== Registro (Whitelisted) =================== (Se uma entrada for incluída na fixlist, o ítem no Registro será restaurado para o padrão ou removido. O arquivo não será movido.) HKLM\...\Run: [AvastUI.exe] => "C:\Program Files\Avast Software\Avast\AvLaunch.exe" /gui (Nenhum Arquivo) HKLM\...\Run: [RtkAudUService] => C:\Windows\System32\RtkAudUService64.exe [878584 2019-05-24] (Realtek Semiconductor Corp. -> Realtek Semiconductor) HKLM-x32\...\Run: [SunJavaUpdateSched] => C:\Program Files (x86)\Common Files\Java\Java Update\jusched.exe [706344 2021-09-27] (Oracle America, Inc. -> Oracle Corporation) HKLM\SOFTWARE\Policies\Microsoft\Windows Defender: Restrição <==== ATENÇÃO HKU\S-1-5-19\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.) HKU\S-1-5-20\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.) HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\Run: [Steam] => C:\Program Files (x86)\Steam\steam.exe [4267432 2021-11-22] (Valve Corp. -> Valve Corporation) HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\Run: [utweb] => C:\Users\Cliente\AppData\Roaming\uTorrent Web\utweb.exe [5934112 2021-09-30] (BitTorrent Inc -> BitTorrent Inc.) HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\Run: [Discord] => C:\Users\Cliente\AppData\Local\Discord\Update.exe [1512608 2021-09-21] (Discord Inc. -> GitHub) HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\Run: [EpicGamesLauncher] => C:\Program Files (x86)\Epic Games\Launcher\Portal\Binaries\Win64\EpicGamesLauncher.exe [33529824 2021-11-17] (Epic Games Inc. -> Epic Games, Inc.) HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\Run: [Windscribe] => "C:\Program Files (x86)\Windscribe\Windscribe.exe" -os_restart (Nenhum Arquivo) HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\Run: [Opera GX Browser Assistant] => C:\Users\Cliente\AppData\Local\Programs\Opera GX\assistant\browser_assistant.exe [3291288 2021-02-01] (Opera Software AS -> Opera Software) HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\Run: [Spotify] => C:\Users\Cliente\AppData\Roaming\Spotify\Spotify.exe [18750392 2021-11-24] (Spotify AB -> Spotify Ltd) HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.) HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\...\Run: [Opera Browser Assistant] => C:\Users\Cliente\AppData\Local\Programs\Opera\assistant\browser_assistant.exe [4105424 2021-10-14] (Opera Software AS -> Opera Software) HKU\S-1-5-18\...\Run: [GoogleDriveFS] => C:\Program Files\Google\Drive File Stream\53.0.8.0\GoogleDriveFS.exe [54402392 2021-11-19] (Google LLC -> Google, Inc.) HKLM\Software\Microsoft\Active Setup\Installed Components: [{8A69D345-D564-463c-AFF1-A69D9E530F96}] -> C:\Program Files\Google\Chrome\Application\96.0.4664.45\Installer\chrmstp.exe [2021-11-15] (Google LLC -> Google LLC) BootExecute: autocheck autochk /m /P \Device\HarddiskVolume7autocheck autochk * GroupPolicy: Restrição ? <==== ATENÇÃO Policies: C:\ProgramData\NTUSER.pol: Restrição <==== ATENÇÃO HKLM\SOFTWARE\Policies\Mozilla\Firefox: Restrição <==== ATENÇÃO ==================== Tarefas Agendadas (Whitelisted) ============ (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) Task: {0C02C146-A300-42C3-9111-1DEF7464FB30} - System32\Tasks\GoogleUpdateTaskMachineCore => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2020-07-30] (Google LLC -> Google LLC) Task: {0D6B0B48-5E68-4264-9A57-022468BE508B} - System32\Tasks\Microsoft\Office\Office Automatic Updates 2.0 => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation) Task: {2395FEDF-F4DF-4094-AEDC-542BA2DECF36} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentFallBack2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6242232 2021-11-11] (Microsoft Corporation -> Microsoft Corporation) Task: {2A1D0148-A324-445F-91F7-176B23233358} - System32\Tasks\StartCN => C:\Program Files\AMD\CNext\CNext\cncmd.exe [63960 2021-07-09] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {44A7A00E-47A0-4D52-A8D6-CEE68E6D68D6} - System32\Tasks\AMDRyzenMasterSDKTask => C:\Program Files\AMD\CNext\CNext\cpumetricsserver.exe [43520 2021-07-09] (Advanced Micro Devices, Inc.) [Arquivo não assinado] Task: {4855610F-E126-48EB-9431-CE5F59663FA0} - System32\Tasks\Opera scheduled Autoupdate 1623706571 => C:\Users\Cliente\AppData\Local\Programs\Opera\launcher.exe [2265296 2021-11-23] (Opera Software AS -> Opera Software) Task: {488A9585-4D14-4D37-AA20-99069F8A66BF} - System32\Tasks\Microsoft\Office\OfficeTelemetryAgentLogOn2016 => C:\Program Files (x86)\Microsoft Office\root\Office16\msoia.exe [6242232 2021-11-11] (Microsoft Corporation -> Microsoft Corporation) Task: {4F76D134-8B05-43F3-850C-1D272766E5F3} - System32\Tasks\StartDVR => C:\Program Files\AMD\CNext\CNext\RSServCmd.exe [269272 2021-07-09] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {70AB8628-2FF8-414D-A1E5-F86C5379FD8B} - System32\Tasks\CCleaner Update => C:\Program Files\CCleaner\CCUpdate.exe [684976 2021-04-22] (Piriform Software Ltd -> Piriform) Task: {78D25ECF-4028-4FA9-9757-520983264532} - System32\Tasks\Microsoft\Office\Office Feature Updates Logon => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108888 2021-11-11] (Microsoft Corporation -> Microsoft Corporation) Task: {8071C839-F70B-4F02-B487-3FCD1CF65066} - System32\Tasks\AMDInstallLauncher => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1715672 2021-07-09] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {94C7B288-16E7-4211-AD04-ED6710B27BDA} - System32\Tasks\Microsoft\Office\Office Feature Updates => C:\Program Files (x86)\Microsoft Office\root\Office16\sdxhelper.exe [108888 2021-11-11] (Microsoft Corporation -> Microsoft Corporation) Task: {A04E37FA-8D93-4F01-8461-787821E7E35A} - System32\Tasks\R@1n-KMS\Windows64Professional => wmic path SoftwareLicensingProduct where (ID="2de67392-b7a7-462a-b1ca-108dd189f588") call Activate Task: {A3FAE07C-F785-4A4B-9F62-31A5BD7E1951} - System32\Tasks\AMDLinkUpdate => C:\Program Files\AMD\CIM\Bin64\InstallManagerApp.exe [1715672 2021-07-09] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) Task: {AA2463D2-DA98-4D3D-BC41-B6E19133B005} - System32\Tasks\Avast Software\Overseer => C:\Program Files\Common Files\Avast Software\Overseer\overseer.exe [1790184 2021-06-11] (Avast Software s.r.o. -> Avast Software) Task: {B0DD289D-512E-4573-BEA5-A409F9D366A5} - System32\Tasks\Opera GX scheduled assistant Autoupdate 1631534628 => C:\Users\Cliente\AppData\Local\Programs\Opera GX\launcher.exe [2201808 2021-11-24] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Cliente\AppData\Local\Programs\Opera GX\assistant" $(Arg0) Task: {C174C383-DF1D-4A0E-AB8C-5D9225FB7622} - System32\Tasks\Opera scheduled assistant Autoupdate 1623706573 => C:\Users\Cliente\AppData\Local\Programs\Opera\launcher.exe [2265296 2021-11-23] (Opera Software AS -> Opera Software) -> --scheduledautoupdate --component-name=assistant --component-path="C:\Users\Cliente\AppData\Local\Programs\Opera\assistant" $(Arg0) Task: {CDDA976E-595A-4091-A030-1EE79D3E1F4D} - System32\Tasks\Avast Emergency Update => C:\Program Files\Avast Software\Avast\AvEmUpdate.exe (Nenhum Arquivo) Task: {D1E64604-00C6-49D0-AEFD-BF014C365E75} - System32\Tasks\Opera GX scheduled Autoupdate 1630351742 => C:\Users\Cliente\AppData\Local\Programs\Opera GX\launcher.exe [2201808 2021-11-24] (Opera Software AS -> Opera Software) Task: {EADC5181-F29F-41C2-AB5D-EB413926A76E} - System32\Tasks\Microsoft\Office\Office ClickToRun Service Monitor => C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeC2RClient.exe [22654872 2021-11-04] (Microsoft Corporation -> Microsoft Corporation) Task: {EB1D1C97-7BED-41DA-A095-385601B018F8} - System32\Tasks\GoogleUpdateTaskMachineUA => C:\Program Files (x86)\Google\Update\GoogleUpdate.exe [154456 2020-07-30] (Google LLC -> Google LLC) (Se uma entrada for incluída na fixlist, o arquivo da tarefa (.job) será movido. O arquivo que está sendo executado pela tarefa não será movido.) Task: C:\Windows\Tasks\CreateExplorerShellUnelevatedTask.job => C:\Windows\explorer.exe ==================== Internet (Whitelisted) ==================== (Se um ítem for incluído na fixlist, sendo um ítem do Registro, será removido ou restaurado para o padrão.) Tcpip\Parameters: [DhcpNameServer] 10.0.0.1 Tcpip\..\Interfaces\{b886df1b-89d5-46ce-b568-13363893b478}: [DhcpNameServer] 10.0.0.1 Edge: ======= Edge DefaultProfile: Default Edge Profile: C:\Users\Cliente\AppData\Local\Microsoft\Edge\User Data\Default [2021-11-27] Edge HomePage: Default -> hxxp://www.google.com.br/ Edge StartupUrls: Default -> "hxxp://www.google.com.br/" Edge Extension: (Kaspersky Protection) - C:\Users\Cliente\AppData\Local\Microsoft\Edge\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-10-11] Edge HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] Edge HKU\S-1-5-21-4251501590-2440355686-2544988780-1001\SOFTWARE\Microsoft\Edge\Extensions\...\Edge\Extension: [llbjbkhnmlidjebalopleeepgdfgcpec] - C:\Program Files (x86)\Internet Download Manager\IDMEdgeExt.crx FireFox: ======== FF HKLM\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a) FF HKLM-x32\...\Firefox\Extensions: [light_plugin_7571494CE0B94E11BB762B659A4AD71F@kaspersky.com] - C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\FFExt\light_plugin_firefox\addon.xpi => não encontrado (a) FF Plugin-x32: @java.com/DTPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\dtplugin\npDeployJava1.dll [2021-11-02] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @java.com/JavaPlugin,version=11.311.2 -> C:\Program Files (x86)\Java\jre1.8.0_311\bin\plugin2\npjp2.dll [2021-11-02] (Oracle America, Inc. -> Oracle Corporation) FF Plugin-x32: @microsoft.com/Lync,version=15.0 -> C:\Program Files (x86)\Microsoft Office\root\VFS\ProgramFilesX86\Mozilla Firefox\plugins\npmeetingjoinpluginoc.dll [2021-10-29] (Microsoft Corporation -> Microsoft Corporation) FF Plugin-x32: @microsoft.com/SharePoint,version=14.0 -> C:\Program Files (x86)\Microsoft Office\root\Office16\NPSPWRAP.DLL [2021-10-29] (Microsoft Corporation -> Microsoft Corporation) Chrome: ======= CHR Profile: C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default [2021-11-24] CHR DownloadDir: E:\Download - HD CHR HomePage: Default -> hxxp://www.google.com.br/ CHR StartupUrls: Default -> "hxxp://www.google.com.br/" CHR DefaultSearchURL: Default -> hxxps://www.bing.com/search?q={searchTerms}&pc=COS2&ptag=D061421-N0640AF75BAE01A83A43AB87F&form=CONBDF&conlogo=CT3331983 CHR DefaultSearchKeyword: Default -> bing® CHR DefaultNewTabURL: Default -> hxxps://www.bing.com/chrome/newtab?pc=COS2&ptag=D061421-N0630AF75BAE01A83A43AB87F&form=CONMHP&conlogo=CT3331983 CHR DefaultSuggestURL: Default -> hxxp://api.bing.com/osjson.aspx?query={searchTerms} CHR Extension: (Kaspersky Protection) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\ahkjpbeeocnddjkakilopmfdlnjdpcdm [2021-10-14] CHR Extension: (AdBlock — o melhor bloqueador de anúncios) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\gighmmpiobklfepjocnamgkkbiglidom [2021-11-15] CHR Extension: (Chrome Remote Desktop) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\inomeogfingihgjfjlpeplalcfajhgai [2021-06-24] CHR Extension: (Pagamentos da Chrome Web Store) - C:\Users\Cliente\AppData\Local\Google\Chrome\User Data\Default\Extensions\nmmhkkegccagdldgiimedpiccmgmieda [2021-06-11] CHR HKLM\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [ahkjpbeeocnddjkakilopmfdlnjdpcdm] - hxxps://chrome.google.com/webstore/detail/kaspersky-protection/ahkjpbeeocnddjkakilopmfdlnjdpcdm CHR HKLM-x32\...\Chrome\Extension: [mfhcmdonhekjhfbjmeacdjbhlfgpjabp] Opera: ======= OPR Profile: C:\Users\Cliente\AppData\Roaming\Opera Software\Opera Stable [2021-10-14] OPR DownloadDir: E:\Download - HD OPR DefaultSuggestURL: Opera Stable -> hxxps://www.google.com/complete/search?client=opera&q={searchTerms}&ie={inputEncoding}&oe={outputEncoding} OPR Extension: (Rich Hints Agent) - C:\Users\Cliente\AppData\Roaming\Opera Software\Opera Stable\Extensions\enegjkbbakeegngfapepobipndnebkdk [2021-08-28] OPR Extension: (Safe Torrent Scanner) - C:\Users\Cliente\AppData\Roaming\Opera Software\Opera Stable\Extensions\gpabaecgmgbeapjghcfhohnbljcocknl [2021-07-10] StartMenuInternet: (HKU\S-1-5-21-4251501590-2440355686-2544988780-1001) Opera GXStable - "C:\Users\Cliente\AppData\Local\Programs\Opera GX\Launcher.exe" ==================== Serviços (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R2 AVP21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\avp.exe [184768 2021-07-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 BEService; C:\Program Files (x86)\Common Files\BattlEye\BEService.exe [8901968 2021-06-21] (BattlEye Innovations e.K. -> ) R2 ClickToRunSvc; C:\Program Files\Common Files\Microsoft Shared\ClickToRun\OfficeClickToRun.exe [12034464 2021-11-04] (Microsoft Corporation -> Microsoft Corporation) S3 EasyAntiCheat; C:\Program Files (x86)\EasyAntiCheat\EasyAntiCheat.exe [818304 2021-06-17] (EasyAntiCheat Oy -> Epic Games, Inc) S4 EpicOnlineServices; C:\Program Files (x86)\Epic Games\Epic Online Services\service\EpicOnlineServicesHost.exe [926176 2021-03-16] (Epic Games Inc. -> Epic Games, Inc.) S3 klvssbridge64_21.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Security Cloud 21.3\x64\vssbridge64.exe [479280 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 kpm_launch_service; C:\Program Files (x86)\Kaspersky Lab\Kaspersky Password Manager 9.0.2\kpm_service.exe [368360 2021-06-08] (Kaspersky Lab JSC -> AO Kaspersky Lab) R2 KSDE5.3; C:\Program Files (x86)\Kaspersky Lab\Kaspersky VPN 5.3\ksde.exe [447104 2021-07-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) S2 PnkBstrA; C:\Windows\SysWOW64\PnkBstrA.exe [76888 2021-09-07] (Even Balance, Inc. -> ) S3 Rockstar Service; E:\SteamLibrary\steamapps\common\Grand Theft Auto V\Launcher\RockstarService.exe [2017072 2021-11-15] (Rockstar Games, Inc. -> Rockstar Games) S3 Sense; C:\Program Files\Windows Defender Advanced Threat Protection\MsSense.exe [6103464 2021-11-26] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WdNisSvc; C:\Program Files\Windows Defender\NisSrv.exe [3004048 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S3 WinDefend; C:\Program Files\Windows Defender\MsMpEng.exe [103384 2019-12-07] (Microsoft Windows Publisher -> Microsoft Corporation) S2 DCIService; C:\Program Files (x86)\Lavasoft\Web Companion\Service\x64\DCIService.exe [X] ===================== Drivers (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) R3 amdfendrmgr; C:\Windows\System32\drivers\amdfendrmgr.sys [41536 2021-07-07] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R3 AMDSAFD; C:\Windows\System32\DriverStore\FileRepository\amdsafd.inf_amd64_8e2568524f674315\amdsafd.sys [100768 2021-03-29] (Microsoft Windows Hardware Compatibility Publisher -> Advanced Micro Devices) R3 amdwddmg; C:\Windows\System32\DriverStore\FileRepository\u0369595.inf_amd64_5300d310447c496a\B369498\amdkmdag.sys [81601552 2021-07-14] (Advanced Micro Devices Inc. -> Advanced Micro Devices, Inc.) R3 AMDXE; C:\Windows\System32\drivers\amdxe.sys [64824 2021-06-25] (Advanced Micro Devices, Inc. -> Advanced Micro Devices, Inc.) R2 BdDci; C:\Windows\system32\DRIVERS\bddci.sys [367096 2021-11-25] (Bitdefender SRL -> Bitdefender) R0 cm_km; C:\Windows\System32\DRIVERS\cm_km.sys [250032 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 DroidCam; C:\Windows\System32\drivers\droidcam.sys [32240 2020-04-10] (Microsoft Windows Hardware Compatibility Publisher -> Dev47Apps) R3 DroidCamVideo; C:\Windows\System32\DriverStore\FileRepository\droidcamvideo.inf_amd64_47e18363cbf3dfe0\droidcamvideo.sys [33784 2021-04-09] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R1 googledrivefs3525; C:\Windows\System32\DRIVERS\googledrivefs3525.sys [389640 2021-09-09] (Google LLC -> Google, Inc.) R1 klbackupdisk; C:\Windows\system32\DRIVERS\klbackupdisk.sys [110336 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klbackupflt; C:\Windows\System32\DRIVERS\klbackupflt.sys [211704 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kldisk; C:\Windows\system32\DRIVERS\kldisk.sys [126216 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S0 klelam; C:\Windows\System32\DRIVERS\klelam.sys [41656 2021-02-19] (Microsoft Windows Early Launch Anti-malware Publisher -> AO Kaspersky Lab) R1 klflt; C:\Windows\system32\DRIVERS\klflt.sys [514840 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klgse; C:\Windows\System32\DRIVERS\klgse.sys [674104 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klhk; C:\Windows\system32\DRIVERS\klhk.sys [1469240 2021-09-09] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klids; C:\ProgramData\Kaspersky Lab\AVP21.3\Bases\klids.sys [273176 2021-08-11] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 KLIF; C:\Windows\System32\DRIVERS\klif.sys [1042712 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klim6; C:\Windows\system32\DRIVERS\klim6.sys [98040 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klkbdflt; C:\Windows\system32\DRIVERS\klkbdflt.sys [112392 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 klmouflt; C:\Windows\system32\DRIVERS\klmouflt.sys [112904 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klpd; C:\Windows\System32\DRIVERS\klpd.sys [85256 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klpnpflt; C:\Windows\system32\DRIVERS\klpnpflt.sys [96008 2021-07-17] (Kaspersky Lab JSC -> AO Kaspersky Lab) R3 kltap; C:\Windows\System32\drivers\kltap.sys [55592 2021-02-19] (AnchorFree Inc -> The OpenVPN Project) R0 klupd_klif_arkmon; C:\Windows\System32\Drivers\klupd_klif_arkmon.sys [276064 2021-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_klark; C:\Windows\System32\Drivers\klupd_klif_klark.sys [314040 2021-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R0 klupd_klif_klbg; C:\Windows\System32\Drivers\klupd_klif_klbg.sys [113976 2021-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R3 klupd_klif_mark; C:\Windows\System32\Drivers\klupd_klif_mark.sys [225648 2021-11-25] (Microsoft Windows Hardware Compatibility Publisher -> AO Kaspersky Lab) R1 klwfp; C:\Windows\system32\DRIVERS\klwfp.sys [155912 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 klwtp; C:\Windows\system32\DRIVERS\klwtp.sys [327936 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) R1 kneps; C:\Windows\system32\DRIVERS\kneps.sys [300808 2021-02-19] (Kaspersky Lab JSC -> AO Kaspersky Lab) S3 tapwindscribe0901; C:\Windows\System32\drivers\tapwindscribe0901.sys [57768 2021-08-10] (Windscribe Limited -> The OpenVPN Project) S3 WdBoot; C:\Windows\system32\drivers\WdBoot.sys [46688 2019-12-07] (Microsoft Windows Early Launch Anti-malware Publisher -> Microsoft Corporation) S3 WdFilter; C:\Windows\system32\drivers\WdFilter.sys [350136 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 WdNisDrv; C:\Windows\System32\Drivers\WdNisDrv.sys [54200 2019-12-07] (Microsoft Windows -> Microsoft Corporation) S3 windtun420; C:\Windows\System32\drivers\windtun420.sys [47544 2021-08-10] (Windscribe Limited -> WireGuard LLC) S3 WOVAD; C:\Windows\System32\drivers\womic.sys [37864 2021-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) R3 wovad_micarray; C:\Windows\system32\drivers\womic.sys [37864 2021-08-18] (Microsoft Windows Hardware Compatibility Publisher -> Windows (R) Win 7 DDK provider) S3 cpuz145; \??\C:\Windows\temp\cpuz145\cpuz145_x64.sys [X] S3 GPU-Z-v2; \??\C:\Users\Cliente\AppData\Local\Temp\GPU-Z-v2.sys [X] <==== ATENÇÃO ==================== NetSvcs (Whitelisted) =================== (Se uma entrada for incluída na fixlist, será removida do Registro. O arquivo não será movido, a menos que seja colocado separadamente.) ==================== Um mês (criados) (Whitelisted) ========= (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2021-11-28 10:22 - 2021-11-28 10:23 - 000024501 _____ C:\Users\Cliente\Desktop\FRST.txt 2021-11-28 10:13 - 2021-11-28 10:23 - 000000000 ____D C:\FRST 2021-11-28 10:10 - 2021-11-28 10:11 - 000000000 ____D C:\AdwCleaner 2021-11-28 10:09 - 2021-11-28 10:09 - 002311680 _____ (Farbar) C:\Users\Cliente\Desktop\FRST64.exe 2021-11-27 20:45 - 2021-11-27 20:45 - 000931044 _____ C:\Windows\Minidump\112721-47468-01.dmp 2021-11-27 18:38 - 2021-11-27 18:38 - 000817068 _____ C:\Windows\Minidump\112721-43000-01.dmp 2021-11-27 18:28 - 2021-11-27 18:28 - 000011788 _____ C:\ZA-Scan.txt 2021-11-27 18:23 - 2021-11-27 18:23 - 000000000 ____D C:\zoek_backup 2021-11-27 18:17 - 2021-11-27 18:18 - 001531132 _____ C:\Windows\Minidump\112721-40000-01.dmp 2021-11-27 18:14 - 2021-11-27 18:11 - 006102389 _____ C:\Users\Cliente\Desktop\zoek.zip 2021-11-27 18:14 - 2018-04-19 22:18 - 002041445 _____ C:\Users\Cliente\Desktop\Z-Analyse.exe 2021-11-27 18:14 - 2018-04-18 00:39 - 002038755 _____ C:\Users\Cliente\Desktop\zoek.exe 2021-11-27 18:14 - 2018-04-18 00:39 - 002038755 _____ C:\Users\Cliente\Desktop\ZA-Scan.exe 2021-11-27 18:11 - 2021-11-27 18:11 - 006102389 _____ C:\Users\Cliente\Downloads\zoek.zip 2021-11-27 14:55 - 2021-11-27 14:55 - 004575931 _____ C:\Users\Cliente\Desktop\LogsColetados.7z 2021-11-27 14:43 - 2021-11-27 14:43 - 001676325 _____ C:\Users\Cliente\Downloads\ColetorLogsBSOD-CdH.7z 2021-11-27 14:43 - 2021-10-19 22:35 - 000000000 ____D C:\Users\Cliente\Desktop\ColetorLogsBSOD-CdH 2021-11-27 14:40 - 2021-11-27 14:41 - 001188812 _____ C:\Windows\Minidump\112721-42421-01.dmp 2021-11-27 14:35 - 2021-11-27 14:35 - 000000000 ___HD C:\$WinREAgent 2021-11-27 14:32 - 2021-11-27 14:33 - 001233108 _____ C:\Windows\Minidump\112721-52984-01.dmp 2021-11-26 17:32 - 2021-11-26 17:32 - 000203264 _____ C:\Windows\system32\uwfcfgmgmt.dll 2021-11-26 17:32 - 2021-11-26 17:32 - 000170496 _____ C:\Windows\system32\DeviceUpdateCenterCsp.dll 2021-11-26 17:32 - 2021-11-26 17:32 - 000158208 _____ C:\Windows\system32\uwfcsp.dll 2021-11-26 17:32 - 2021-11-26 17:32 - 000040960 _____ C:\Windows\system32\uwfservicingapi.dll 2021-11-26 17:31 - 2021-11-26 17:31 - 002111488 _____ (Digimarc) C:\Windows\SysWOW64\DMRCDecoder.dll 2021-11-26 17:31 - 2021-11-26 17:31 - 001333760 _____ C:\Windows\SysWOW64\TextInputMethodFormatter.dll 2021-11-26 17:31 - 2021-11-26 17:31 - 000672768 _____ C:\Windows\system32\FsNVSDeviceSource.dll 2021-11-26 17:31 - 2021-11-26 17:31 - 000611960 _____ C:\Windows\SysWOW64\TextShaping.dll 2021-11-26 17:31 - 2021-11-26 17:31 - 000011363 _____ C:\Windows\system32\DrtmAuthTxt.wim 2021-11-26 17:30 - 2021-11-26 17:30 - 002295296 _____ (Digimarc) C:\Windows\system32\DMRCDecoder.dll 2021-11-26 17:30 - 2021-11-26 17:30 - 001164288 _____ C:\Windows\system32\MBR2GPT.EXE 2021-11-26 17:30 - 2021-11-26 17:30 - 000223744 _____ C:\Windows\SysWOW64\TpmTool.exe 2021-11-26 17:30 - 2021-11-26 17:30 - 000098304 _____ C:\Windows\system32\Drivers\cimfs.sys 2021-11-26 17:30 - 2021-11-26 17:30 - 000060928 _____ C:\Windows\system32\runexehelper.exe 2021-11-26 17:29 - 2021-11-26 17:29 - 002260992 _____ C:\Windows\system32\TextInputMethodFormatter.dll 2021-11-26 17:29 - 2021-11-26 17:29 - 000706536 _____ C:\Windows\system32\TextShaping.dll 2021-11-26 17:29 - 2021-11-26 17:29 - 000288768 _____ C:\Windows\system32\Windows.Management.InprocObjects.dll 2021-11-26 17:29 - 2021-11-26 17:29 - 000272384 _____ C:\Windows\system32\TpmTool.exe 2021-11-26 17:29 - 2021-11-26 17:29 - 000162816 _____ C:\Windows\system32\DataStoreCacheDumpTool.exe 2021-11-26 17:03 - 2021-11-26 17:03 - 000001153 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\PC Health Check.lnk 2021-11-26 17:03 - 2021-11-26 17:03 - 000000000 ____D C:\Program Files\PCHealthCheck 2021-11-26 13:58 - 2021-11-27 20:45 - 1370490502 _____ C:\Windows\MEMORY.DMP 2021-11-25 09:31 - 2021-11-25 09:31 - 000314040 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klark.sys 2021-11-25 09:30 - 2021-11-25 17:55 - 000225648 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_mark.sys 2021-11-25 09:30 - 2021-11-25 09:30 - 000276064 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_arkmon.sys 2021-11-25 09:30 - 2021-11-25 09:30 - 000113976 _____ (AO Kaspersky Lab) C:\Windows\system32\Drivers\klupd_klif_klbg.sys 2021-11-25 09:22 - 2021-11-25 09:22 - 000367096 _____ (Bitdefender) C:\Windows\system32\Drivers\bddci.sys 2021-11-23 22:04 - 2021-11-23 22:04 - 000000000 ____D C:\Users\Cliente\AppData\Local\DBFighterZ 2021-11-23 22:03 - 2021-11-23 22:04 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\EMPRESS 2021-11-23 22:02 - 2021-11-23 22:03 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Dragon Ball Figher Z 2021-11-23 21:31 - 2021-11-23 21:41 - 000000000 ____D C:\Users\Cliente\Downloads\Dragon.Ball.FighterZ.GogetaSS4-EMPRESS 2021-11-23 20:36 - 2016-08-10 10:43 - 000456704 _____ (FragSoft) C:\Windows\SysWOW64\ISDone.dll 2021-11-23 20:34 - 2016-08-10 10:43 - 000456704 _____ (FragSoft) C:\Windows\system32\ISDone.dll 2021-11-18 21:46 - 2021-11-18 21:46 - 000000000 ____D C:\Users\Cliente\AppData\Local\HaloInfinite 2021-11-12 11:43 - 2021-11-24 21:53 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\uTorrent Web 2021-11-12 11:42 - 2021-11-12 11:42 - 079558040 _____ C:\Users\Cliente\Downloads\GTA Trilogy by Zoio.rar 2021-11-09 22:46 - 2021-11-09 22:46 - 000000000 ____D C:\Users\Cliente\Documents\Trials Rising 2021-11-03 23:55 - 2021-11-03 23:55 - 000094466 _____ C:\Users\Cliente\Downloads\script-1x1-mpv7d.pdf 2021-11-02 21:33 - 2021-11-02 21:33 - 000021614 _____ C:\Users\Cliente\Downloads\br.m3u 2021-11-02 14:37 - 2021-11-02 14:37 - 000000000 ____D C:\Users\Cliente\AppData\LocalLow\Dani 2021-11-01 13:10 - 2021-11-01 13:10 - 000246732 _____ C:\Users\Cliente\Documents\planificacao.pptx 2021-10-30 20:18 - 2021-10-30 20:18 - 000000000 ____D C:\Users\Cliente\Documents\KoeiTecmo ==================== Um mês (modificados) ================== (Se uma entrada for incluída na fixlist, o arquivo/pasta será movido.) 2021-11-28 10:21 - 2021-08-06 16:37 - 000000000 ___RD C:\Users\Cliente\Desktop\ㅤㅤ 2021-11-28 10:20 - 2019-12-07 06:14 - 000000000 ____D C:\ProgramData\regid.1991-06.com.microsoft 2021-11-28 10:12 - 2020-07-30 11:11 - 000005860 _____ C:\Windows\system32\PerfStringBackup.INI 2021-11-28 10:12 - 2019-12-07 11:53 - 001028772 _____ C:\Windows\system32\prfh0416.dat 2021-11-28 10:12 - 2019-12-07 11:53 - 000412406 _____ C:\Windows\system32\prfc0416.dat 2021-11-28 10:11 - 2021-08-06 15:54 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\discord 2021-11-28 10:11 - 2021-06-14 20:38 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\IObit 2021-11-28 10:11 - 2021-06-14 20:38 - 000000000 ____D C:\Users\Cliente\AppData\LocalLow\IObit 2021-11-28 10:11 - 2021-06-14 20:38 - 000000000 ____D C:\ProgramData\IObit 2021-11-28 10:11 - 2021-06-14 18:36 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\Lavasoft 2021-11-28 10:11 - 2021-06-14 18:36 - 000000000 ____D C:\Users\Cliente\AppData\Local\Lavasoft 2021-11-28 10:11 - 2021-06-14 18:36 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Lavasoft 2021-11-28 10:11 - 2021-06-14 18:36 - 000000000 ____D C:\Program Files (x86)\Lavasoft 2021-11-28 10:11 - 2021-06-14 18:35 - 000000000 ____D C:\ProgramData\Lavasoft 2021-11-28 10:08 - 2020-07-30 11:17 - 000000000 ____D C:\Program Files\CCleaner 2021-11-28 10:08 - 2020-07-30 11:17 - 000000000 ____D C:\Program Files (x86)\Google 2021-11-28 10:07 - 2021-10-14 15:55 - 000000000 ____D C:\Users\Cliente\AppData\Local\Discord 2021-11-28 10:06 - 2020-07-30 11:03 - 000008192 ___SH C:\DumpStack.log.tmp 2021-11-28 10:06 - 2020-07-30 11:03 - 000000006 ____H C:\Windows\Tasks\SA.DAT 2021-11-28 00:37 - 2020-07-30 11:07 - 000000000 ____D C:\Users\Cliente 2021-11-28 00:37 - 2019-12-07 06:03 - 000786432 _____ C:\Windows\system32\config\BBI 2021-11-28 00:35 - 2021-06-11 17:35 - 000000000 ____D C:\Program Files (x86)\Steam 2021-11-28 00:13 - 2021-06-14 22:07 - 000000000 ____D C:\Users\Cliente\AppData\Local\Bluestacks 2021-11-28 00:11 - 2020-07-30 11:03 - 000000000 ____D C:\Windows\system32\SleepStudy 2021-11-28 00:07 - 2021-09-03 21:13 - 000000000 ____D C:\Users\Cliente\AppData\Local\Ubisoft Game Launcher 2021-11-27 20:46 - 2021-06-17 23:52 - 000000000 ____D C:\Windows\Minidump 2021-11-27 18:26 - 2021-06-11 16:02 - 000000000 ____D C:\Users\Cliente\AppData\Local\CrashDumps 2021-11-27 16:06 - 2021-09-07 12:54 - 000281688 _____ C:\Windows\SysWOW64\PnkBstrB.xtr 2021-11-27 16:06 - 2021-09-07 12:53 - 000281688 _____ C:\Windows\SysWOW64\PnkBstrB.exe 2021-11-27 16:06 - 2021-06-11 15:21 - 000000000 ____D C:\Users\Cliente\AppData\Local\D3DSCache 2021-11-27 14:37 - 2020-07-30 11:17 - 000002252 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Chrome.lnk 2021-11-27 14:37 - 2020-07-30 11:03 - 000002445 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Microsoft Edge.lnk 2021-11-27 14:37 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\AppReadiness 2021-11-27 14:36 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\CbsTemp 2021-11-26 21:02 - 2021-08-31 14:37 - 000000000 ____D C:\Users\Cliente\Documents\The Witcher 3 2021-11-26 17:55 - 2019-12-07 06:13 - 000000000 ____D C:\Windows\INF 2021-11-26 17:48 - 2020-07-30 11:03 - 000438888 _____ C:\Windows\system32\FNTCACHE.DAT 2021-11-26 17:45 - 2019-12-07 11:56 - 000000000 ___SD C:\Windows\system32\AppV 2021-11-26 17:45 - 2019-12-07 11:56 - 000000000 ____D C:\Program Files\Windows Defender Advanced Threat Protection 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ___SD C:\Windows\system32\UNP 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ___SD C:\Windows\system32\DiagSvcs 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ___RD C:\Windows\ImmersiveControlPanel 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\WinMetadata 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\setup 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\oobe 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SysWOW64\Dism 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\SystemResources 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinMetadata 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\WinBioPlugIns 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\setup 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\oobe 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\migwiz 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\Dism 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\DDFs 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\system32\appraiser 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellExperiences 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\ShellComponents 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\Provisioning 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\PolicyDefinitions 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\DiagTrack 2021-11-26 17:45 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\bcastdvr 2021-11-26 17:45 - 2019-12-07 06:03 - 000000000 ____D C:\Windows\servicing 2021-11-26 17:11 - 2021-06-18 13:34 - 000000000 ____D C:\Program Files\Microsoft Update Health Tools 2021-11-26 17:10 - 2021-06-18 13:30 - 000000000 ____D C:\Windows\system32\MRT 2021-11-26 17:04 - 2021-06-18 13:30 - 141529560 ____C (Microsoft Corporation) C:\Windows\system32\MRT.exe 2021-11-26 09:54 - 2019-12-07 06:03 - 000032768 _____ C:\Windows\system32\config\ELAM 2021-11-25 23:19 - 2020-07-30 11:17 - 000004210 _____ C:\Windows\system32\Tasks\CCleaner Update 2021-11-25 21:00 - 2019-12-07 06:14 - 000000000 ____D C:\Windows\LiveKernelReports 2021-11-25 20:10 - 2019-12-07 06:14 - 000000000 ___HD C:\Program Files\WindowsApps 2021-11-25 17:00 - 2021-06-11 15:03 - 000000000 ____D C:\Users\Cliente\AppData\Local\PlaceholderTileLogoFolder 2021-11-25 13:30 - 2020-07-30 11:07 - 000000000 ____D C:\Users\Cliente\AppData\Local\Packages 2021-11-25 09:27 - 2021-09-24 10:00 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\.minecraft 2021-11-25 09:26 - 2021-09-24 10:00 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\.tlauncher 2021-11-25 09:22 - 2021-10-22 09:09 - 000001422 _____ C:\Users\Cliente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera.lnk 2021-11-25 09:22 - 2021-06-14 18:36 - 000004232 _____ C:\Windows\system32\Tasks\Opera scheduled Autoupdate 1623706571 2021-11-25 09:21 - 2021-08-30 16:29 - 000004240 _____ C:\Windows\system32\Tasks\Opera GX scheduled Autoupdate 1630351742 2021-11-25 09:21 - 2021-08-30 16:29 - 000001451 _____ C:\Users\Cliente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Navegador Opera GX.lnk 2021-11-24 23:43 - 2021-06-17 16:26 - 000000000 ____D C:\Program Files\Epic Games 2021-11-24 21:43 - 2021-06-14 18:39 - 000000000 ____D C:\Users\Cliente\AppData\Local\BitTorrentHelper 2021-11-24 20:08 - 2020-07-30 11:07 - 000000000 ____D C:\ProgramData\Packages 2021-11-24 19:20 - 2021-07-04 11:30 - 000000000 ____D C:\Users\Cliente\Documents\Euro Truck Simulator 2 2021-11-24 19:06 - 2021-07-31 13:16 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\Spotify 2021-11-24 18:57 - 2021-07-31 13:17 - 000000000 ____D C:\Users\Cliente\AppData\Local\Spotify 2021-11-23 22:47 - 2021-09-07 12:53 - 000281688 _____ C:\Windows\SysWOW64\PnkBstrB.ex0 2021-11-23 22:04 - 2021-06-11 17:35 - 000000000 ____D C:\Users\Cliente\AppData\Local\UnrealEngine 2021-11-23 20:40 - 2021-06-14 18:35 - 000001882 _____ C:\Users\Cliente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\uTorrent Web.lnk 2021-11-23 20:40 - 2021-06-14 18:35 - 000000000 ____D C:\Users\Cliente\AppData\Local\UTW008 2021-11-23 13:52 - 2021-09-24 14:41 - 000002064 _____ C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Google Drive.lnk 2021-11-23 13:52 - 2021-09-24 14:41 - 000001906 _____ C:\Users\Default\Desktop\Google Slides.lnk 2021-11-23 13:52 - 2021-09-24 14:41 - 000001906 _____ C:\Users\Default\Desktop\Google Sheets.lnk 2021-11-23 13:52 - 2021-09-24 14:41 - 000001894 _____ C:\Users\Default\Desktop\Google Docs.lnk 2021-11-22 16:47 - 2021-06-14 23:36 - 000000000 ___RD C:\Users\Cliente\Desktop\ㅤ 2021-11-20 10:35 - 2020-07-30 11:07 - 000000000 ____D C:\Users\Cliente\AppData\Local\ConnectedDevicesPlatform 2021-11-19 22:24 - 2020-07-30 11:24 - 000000000 ____D C:\Users\Cliente\AppData\Local\Comms 2021-11-19 09:32 - 2020-07-30 11:07 - 000000000 __RHD C:\Users\Public\AccountPictures 2021-11-18 22:02 - 2021-06-18 10:42 - 000000000 ____D C:\Users\Cliente\AppData\Local\AMD_Common 2021-11-18 19:01 - 2021-06-14 23:04 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\obs-studio 2021-11-18 18:16 - 2021-06-14 19:24 - 000000000 ____D C:\Users\Cliente\AppData\Roaming\Microsoft\Windows\Start Menu\Programs\Steam 2021-11-18 10:21 - 2021-08-02 14:20 - 000000000 ____D C:\Users\Cliente\AppData\Local\Warframe 2021-11-17 10:04 - 2021-06-11 15:23 - 000003618 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineUA 2021-11-17 10:04 - 2021-06-11 15:23 - 000003494 _____ C:\Windows\system32\Tasks\MicrosoftEdgeUpdateTaskMachineCore 2021-11-12 17:13 - 2021-10-23 23:28 - 000000000 ____D C:\Users\Cliente\Desktop\ㅤㅤㅤㅤ 2021-11-11 18:33 - 2020-07-30 11:09 - 000000000 ____D C:\Program Files (x86)\Microsoft Office 2021-11-10 10:22 - 2021-06-11 15:16 - 000000000 ____D C:\AMD 2021-11-09 22:21 - 2021-07-20 14:43 - 000000000 ____D C:\Users\Cliente\Documents\My Games 2021-11-06 20:10 - 2021-06-11 15:20 - 000000000 ____D C:\ProgramData\Package Cache 2021-11-02 10:58 - 2021-07-10 01:05 - 000000000 ____D C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Java 2021-11-02 10:58 - 2021-07-10 01:05 - 000000000 ____D C:\Program Files (x86)\Java 2021-11-02 10:57 - 2021-07-10 01:05 - 000164696 _____ (Oracle Corporation) C:\Windows\SysWOW64\WindowsAccessBridge-32.dll ==================== Arquivos na raiz de alguns diretórios ======== 2021-06-30 09:06 - 2021-06-30 09:06 - 000000000 _____ () C:\Program Files\Blade Group 2021-06-11 19:11 - 2021-07-13 17:00 - 001065984 _____ () C:\Users\Cliente\AppData\Local\file__0.localstorage 2021-06-25 09:41 - 2021-06-25 09:41 - 000000000 _____ () C:\Users\Cliente\AppData\Local\oobelibMkey.log 2021-06-26 21:53 - 2021-06-26 21:53 - 000004646 _____ () C:\Users\Cliente\AppData\Local\recently-used.xbel 2021-07-09 12:20 - 2021-07-18 23:18 - 000007597 _____ () C:\Users\Cliente\AppData\Local\resmon.resmoncfg ==================== SigCheck ============================ (Não há correção automática para arquivos que não passaram na verificação.) ==================== Fim de FRST.txt ========================